Versions Compared

Old Version 48

changes.mady.by.user trscavo@internet2.edu

Saved on

compared with

New Version 49

changes.mady.by.user Nicole Roy

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Deployers have multiple metadata aggregates from which to choose. This page outlines available options. Policy considerations and general configuration issues are discussed on the Metadata Consumption page. Guidance on how to configure specific Metadata Client Software is available elsewhere in this wiki.

Warning

InCommon DOES NOT serve metadata via TLS (HTTPS). This is intentional. TLS does not provide sufficient protection against metadata tampering. InCommon and other Research and Education federations require customers to verify the XML Digital Signature at the root of metadata documents, using a public key configured for explicit trust. Federating software that cannot:

  1. Consume metadata over HTTP (NOT HTTPS)
  2. Verify the XML Digital Signature at the root of the metadata document

Is not compatible with scalable multilateral SAML federation, and SHOULD NOT BE USED with InCommon or other federations.

Please see the Metadata Consumption and Software Guidelines pages for more information.

Note

All aggregates listed below are production-quality metadata aggregates.

...

Advanced Tables - Table Plus
columnAttributesstyle="padding-left:1em;text-align:right;,style="padding-left:1em;padding-right:1em;text-align:center;,style="padding-left:1em;padding-right:1em;text-align:center;,style="padding-left:1em;padding-right:1em;text-align:center;",style="padding-left:1em;padding-right:1em;text-align:center;"

 

Availability

Stability

Reliability

Affinity

Preview Aggregate

24x7

experimental

leading edge

persistent

Main Aggregate

24x7

stable

mainstream

persistent

Fallback Aggregate

24x7

legacy

trailing edge

transient

Multiple metadata aggregates allow InCommon to deploy changes to metadata more quickly, easily, and safely.

...